Edtech.com's Summary

Frontline Education is hiring an Information Security Engineer 2. This role involves actively contributing to the security team by responding to tier I and II alerts, optimizing security platforms, and engaging in cross-departmental initiatives to enhance security. The position requires collaboration with various internal stakeholders, implementation of new security solutions, and offering strategic input on security controls and risk analysis.

Highlights

Respond to tier I and II security alerts and escalation of issues.
Optimize EDR, SIEM, and vulnerability management platforms.
Hands-on experience with Azure AD, SailPoint, Wiz, and CrowdStrike.
Conduct threat modeling and red/blue team activities.
Salary range: $100,000 - $120,000 per year plus bonus and benefits.
Bachelor’s degree or equivalent experience in IT or related fields required.
Advanced security certifications like CISSP or AWS Security Specialty preferred.
Comprehensive benefits including health insurance, 401k, and unlimited PTO.
Involvement in strategic planning of enterprise security programs.
Engage in internal audits and maintain security certifications.

Information Security Engineer 2 Full Description

Information Security Engineer 2

Location: United States

Description

Information Security Engineer 2

Remote or Hybrid to Wayne, PA

We are seeking an Information Security Engineer for an exciting opportunity to be part of a small security team and growing company, in an evolving industry. The Information Security Engineer will report to the CISO, work with other engineers, and engage other stakeholders across the organization to drive change, ensure smooth running of day-to-day processes, and promote security. This position can be remote.

Our mission is very broad, and our team is small and agile. We will look toward your unique skills to approach and solve problems in your own way. Whether handling tier I and tier II security alerts, assisting engineers with system implementations, or working cross-departmentally to remediate vulnerabilities, you are empowered to engage and lead cross-functionally. In the role of an Information Security Engineer, you will focus on the evaluation, architecture, development, deployment, and operation of network, endpoint and cloud security solutions.

Responsibilities:

Respond to Tier I and Tier II security alerts and escalate issues to senior engineers when necessary.
Own and optimize EDR, SIEM, and vulnerability management platforms to support threat detection and remediation.
Investigate and document potential security incidents as part of the Security Incident Response Team (SIRT).
Monitor and respond to email threats, phishing campaigns, and other forms of social engineering.
Configure and run phishing awareness campaigns and security training exercises.
Track and report application and network vulnerabilities to relevant development and infrastructure teams.
Collaborate with internal stakeholders to ensure timely remediation of identified security risks.
Work with other engineers to implement and configure new security solutions and platforms.
Lead the evaluation, implementation, and optimization of new security tools and initiatives across the organization.
Provide strategic input on risk analysis and help design scalable, sustainable control solutions aligned with business objectives.
Support or lead red/blue team exercises, threat modeling efforts, and proactive threat detection activities.
Participate in cross-functional security reviews of new projects and technologies to ensure security is embedded from the outset.
Collaborate with Legal, Procurement, and other stakeholders to assess vendor risk and conduct third-party security reviews.
Coordinate with IT leadership to define, deploy, and manage the company’s Security Awareness Training Program.
Create and distribute security communications to raise awareness and promote best practices across the organization.
Collect and analyze data to measure the effectiveness of security programs and identify organizational risk trends.
Support internal and external audits and assist in maintaining security certifications.
Work with the CISO to plan, execute, and report on departmental initiatives and goals.
Contribute to building and sustaining a strong culture of security across the company.

Qualifications:

Bachelor’s degree or equivalent work experience in Information Technology, Cybersecurity, Information Systems, Computer Science, or a related discipline.
3–5 years of experience in information security, IT, or a related technical role, with increasing levels of responsibility.
Advanced security certifications such as CISSP, GCIH, OSCP, AWS Security Specialty, or similar strongly preferred.
Hands-on experience with security platforms and tools including, but not limited to, Azure AD, SailPoint, Wiz, CrowdStrike, Snyk, and other security tools.
Practical knowledge and experience with cloud-native security tools and architectures, particularly within AWS, Azure, or GCP environments.
Experience conducting threat modeling and participating in red/blue team activities to proactively identify and mitigate risk.
Familiarity with vendor risk management practices, including third-party risk assessments and security due diligence processes
Demonstrated ability to contribute to the strategic planning and execution of enterprise security programs
Solid understanding of TCP/IP networking, common protocols, and secure architecture principles
Working knowledge of key security control frameworks and risk management standards, such as NIST, MITRE ATT&CK, ISO 2700x, SOC 2, CVE, and familiarity with regulatory requirements including FERPA, HIPAA, SOX, CCPA, and GLBA
Strong problem-solving skills and the ability to work both independently and collaboratively in cross-functional teams
Excellent communication skills, with the ability to convey technical concepts to both technical and non-technical stakeholders

Frontline Education is a pioneer of school administration software purpose-built for K-12 districts. We provide innovative, connected solutions for student and special programs, business operations, and human capital management with powerful data and analytics to empower educators and administrators. We earn the trust of K-12 leaders across the U.S. by serving as a consistently high-performing, forthright partner of school districts through every dimension of the company.

We're a group of unique and talented individuals that love what we do. We've been lucky enough to land jobs with a rapidly growing tech company that supports an appreciative and friendly customer base. We work hard to make our customers happy, but we like to have a good time in the process. We are a company that strives to think in terms of “we” instead of “me.” We believe in the philosophy of servant leadership and that it’s all about putting others first. We also value the balance between family and work.

Frontline embraces diversity, equity, and inclusivity. We are intentionally building a workplace that respects, supports, and values the identities of all our employees. We believe this to be foundational in developing a strong community in our company. Frontline Education is an equal opportunity employer and we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Frontline offers a competitive compensation package including a base salary, rewarding bonus structure, 401k match, and unlimited PTO! Our company growth has created a promising environment for career advancement and rewarding challenges. We offer a tuition reimbursement program for eligible college credit coursework available to employees depending on their status and length of employment.

The salary range for this role is $100,000 - $120,000 per year, based on experience, skills, and internal equity. In addition to base salary, this role includes a bonus, personalized PTO, and comprehensive benefits, including health insurance, 401k, and much more!

Our Privacy Policy: Your privacy is important to us. Click here to read our general Privacy Statement, and click here to read our Applicant Privacy Statement

Original Job Description

Information Security Engineer 2

Location: United States

Description

Information Security Engineer 2

Remote or Hybrid to Wayne, PA

Responsibilities:

Respond to Tier I and Tier II security alerts and escalate issues to senior engineers when necessary.
Own and optimize EDR, SIEM, and vulnerability management platforms to support threat detection and remediation.
Investigate and document potential security incidents as part of the Security Incident Response Team (SIRT).
Monitor and respond to email threats, phishing campaigns, and other forms of social engineering.
Configure and run phishing awareness campaigns and security training exercises.
Track and report application and network vulnerabilities to relevant development and infrastructure teams.
Collaborate with internal stakeholders to ensure timely remediation of identified security risks.
Work with other engineers to implement and configure new security solutions and platforms.
Lead the evaluation, implementation, and optimization of new security tools and initiatives across the organization.
Provide strategic input on risk analysis and help design scalable, sustainable control solutions aligned with business objectives.
Support or lead red/blue team exercises, threat modeling efforts, and proactive threat detection activities.
Participate in cross-functional security reviews of new projects and technologies to ensure security is embedded from the outset.
Collaborate with Legal, Procurement, and other stakeholders to assess vendor risk and conduct third-party security reviews.
Coordinate with IT leadership to define, deploy, and manage the company’s Security Awareness Training Program.
Create and distribute security communications to raise awareness and promote best practices across the organization.
Collect and analyze data to measure the effectiveness of security programs and identify organizational risk trends.
Support internal and external audits and assist in maintaining security certifications.
Work with the CISO to plan, execute, and report on departmental initiatives and goals.
Contribute to building and sustaining a strong culture of security across the company.

Qualifications:

Bachelor’s degree or equivalent work experience in Information Technology, Cybersecurity, Information Systems, Computer Science, or a related discipline.
3–5 years of experience in information security, IT, or a related technical role, with increasing levels of responsibility.
Advanced security certifications such as CISSP, GCIH, OSCP, AWS Security Specialty, or similar strongly preferred.
Hands-on experience with security platforms and tools including, but not limited to, Azure AD, SailPoint, Wiz, CrowdStrike, Snyk, and other security tools.
Practical knowledge and experience with cloud-native security tools and architectures, particularly within AWS, Azure, or GCP environments.
Experience conducting threat modeling and participating in red/blue team activities to proactively identify and mitigate risk.
Familiarity with vendor risk management practices, including third-party risk assessments and security due diligence processes
Demonstrated ability to contribute to the strategic planning and execution of enterprise security programs
Solid understanding of TCP/IP networking, common protocols, and secure architecture principles
Working knowledge of key security control frameworks and risk management standards, such as NIST, MITRE ATT&CK, ISO 2700x, SOC 2, CVE, and familiarity with regulatory requirements including FERPA, HIPAA, SOX, CCPA, and GLBA
Strong problem-solving skills and the ability to work both independently and collaboratively in cross-functional teams
Excellent communication skills, with the ability to convey technical concepts to both technical and non-technical stakeholders

Our Privacy Policy: Your privacy is important to us. Click here to read our general Privacy Statement, and click here to read our Applicant Privacy Statement

Let me find your next job.

Thanks - you're signed up.

Information Security Engineer 2

Edtech.com's Summary

Information Security Engineer 2 Full Description

Information Security Engineer 2

Information Security Analyst

Jr. Information Security Analyst

Sr Manager of Security Operations

Information Security Compliance Analyst III - 526462

Senior Identity Access Management Analyst